135df1af657d00e3f924fdb5e0399530_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

135df1af657d00e3f924fdb5e0399530_JaffaCakes118
Size

56KB
MD5

135df1af657d00e3f924fdb5e0399530
SHA1

8a603b07512748dc2dd48edbf061ded517497237
SHA256

001a1b3ae7b85fd701c63eb5e329cd7dbdea9f43a21ea122096f2bc4300b4321
SHA512

b05f84bfc94c7fdb13c199e2eaf7d1f857b0fe06f4dc6c28753af893617659a1e5aee189db25ed1e04a3c303a9b0dd37810ae62ae1b1ac9c78e771c78ac1abe5
SSDEEP

768:xwHS8rM4Qizr+Gi0P+traRs64C2WDp/LDT7Vl3M8FZ9ao4F1mH/R7RX7t5/gKISP:xwV44QAm+uhuPTXZG1mJ57LgKLOJ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
135df1af657d00e3f924fdb5e0399530_JaffaCakes118

Files

135df1af657d00e3f924fdb5e0399530_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d18e65f294ebf4de1f1193167c3c3c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeW
SetConsoleMode
GetTapeStatus
WriteConsoleA
CopyFileA
GetWriteWatch
VirtualProtect
LZCopy
GetCompressedFileSizeW
LockFileEx
SetConsoleScreenBufferSize
RtlUnwind

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE